Initiate a flight booking on Hopper for a specific flight. Requires passenger details and payment information. Returns booking confirmation or authentication requirements.
AI agents use book_flight to commit financial operations through Hopper MCP Server — usually the final step of a payment, billing, or trading workflow. A call moves real money.
This tool directly commits a financial transaction by booking a flight, requiring payment information and returning a booking confirmation. Misuse by an AI agent could result in unauthorized financial charges for flight purchases, making it the highest severity Financial category.
From the tool's definition 'Initiate a flight booking on Hopper for a specific flight. Requires passenger details and payment information. Returns booking confirmation'
Attacks that exploit this kind of access
Initiate a flight booking on Hopper for a specific flight. Requires passenger details and payment information. Returns booking confirmation or authentication requirements. It is categorised as a Financial tool in the Hopper MCP Server MCP Server, which means it involves financial transactions. Block by default and require explicit approval.
Register the Hopper MCP Server MCP server in PolicyLayer and add a rule for book_flight: allow, deny, rate-limit, or require approval. Point your MCP client at the PolicyLayer proxy URL and the rule is enforced on every call, before it reaches Hopper MCP Server. Nothing to install.
book_flight is a Financial tool with critical risk. Critical-risk tools should be blocked by default and only enabled with explicit human approval.
Yes. Add a rate_limit block to the book_flight rule in your PolicyLayer policy. For example, setting max: 10 and window: 60 limits the tool to 10 calls per minute. Rate limits are tracked per agent session and reset automatically.
Set action: deny in the PolicyLayer policy for book_flight. The AI agent will receive a policy violation error and cannot call the tool. You can also include a reason field to explain why the tool is blocked.
book_flight is provided by the Hopper MCP Server MCP server (markswendsen-code/mcp-hopper). PolicyLayer sits as a proxy in front of this server to enforce policies before tool calls reach the server.
Every MCP server has a record like this.
Type a name, get the same breakdown: verified identity, auth posture, risk grade, capabilities, recommended policy.
Teams ship this data inside their own products. See what a licence covers →